Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorainsecure handling

Fedora 41: FEDORA-2025-a6305306dd critical: open-vm-tools file handling

Update to version 12.5.2. Fixes CVE-2025-22247. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-a6305306dd 2025-05-25 02:12:06.541985+00:00 -------------------------------------------------------------------------------- Name : open-vm-tools Product : Fedora 41 Version : 12.5.2 Release : 1.fc41 URL : https://github.com/vmware/open-vm-tools Summary : Open Virtual Machine Tools for virtual machines hosted on VMware Description : The open-vm-tools project is an open source implementation of VMware Tools. It is a suite of open source virtualization utilities and drivers to improve the functionality, user experience and administration of VMware virtual machines. This package contains only the core user-space programs and libraries of open-vm-tools. -------------------------------------------------------------------------------- Update Information: Update to version 12.5.2. Fixes CVE-2025-22247 -------------------------------------------------------------------------------- ChangeLog: * Fri May 16 2025 Simone Caronni - 12.5.2-1 - Update to 12.5.2 * Thu Mar 20 2025 Richard W.M. Jones - 12.4.0-4 - Bump and rebuild * Fri Jan 17 2025 Fedora Release Engineering - 12.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2294721 - open-vm-tools version 12.4.5 has been released - please rebase https://bugzilla.redhat.com/show_bug.cgi?id=2294721 [ 2 ] Bug #2320094 - open-vm-tools version 12.5.0 has been released - please rebase https://bugzilla.redhat.com/show_bug.cgi?id=2320094 [ 3 ] Bug #2365723 - CVE-2025-22247 open-vm-tools: Insecure file handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2365723 -------------------------------------------------------------------------------- This update can beinstalled with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a6305306dd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . The latest open-vm-tools release, version 12.5.2, has been issued to rectify the security vulnerability identified as CVE-2025-22247 in Fedora 41.. open-vm-tools security, Fedora updates, virtualization security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 25, 2025 Critical Fedora
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryinsecure handlingmoderate severity

SUSE: 2025:01658-1 moderate: open-vm-tools security fix

* bsc#1237147 * bsc#1237180 * bsc#1241938 * bsc#1243106 . # Security update for open-vm-tools Announcement ID: SUSE-SU-2025:01658-1 Release Date: 2025-05-22T13:35:59Z Rating: moderate References: * bsc#1237147 * bsc#1237180 * bsc#1241938 * bsc#1243106 Cross-References: * CVE-2025-22247 CVSS scores: * CVE-2025-22247 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-22247 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N * CVE-2025-22247 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability and has three security fixes can now be installed. ## Description: This update for open-vm-tools fixes the following issues: Update to 12.5.2: Security fixes: * CVE-2025-22247: Fixed Insecure file handling (bsc#1243106) Other fixes: * Fixed GCC 15 compile time error (bsc#1241938) * Fixed building with containerd 1.7.25+ (bsc#1237147) * Ensure vmtoolsd.service and vgauthd.service are set to enabled by default (bsc#1237180) Full changelog: https://github.com/vmware/open-vm-tools/blob/stable-12.5.2/ReleaseNotes.md tools/ChangeLog ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-1658=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1658=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1658=1 * SUSELinux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-1658=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-1658=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-1658=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-1658=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1658=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1658=1 ## Package List: * openSUSE Leap 15.3 (aarch64 x86_64 i586) * open-vm-tools-containerinfo-debuginfo-12.5.2-150300.58.1 * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * open-vm-tools-desktop-12.5.2-150300.58.1 * open-vm-tools-desktop-debuginfo-12.5.2-150300.58.1 * open-vm-tools-sdmp-debuginfo-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * libvmtools-devel-12.5.2-150300.58.1 * open-vm-tools-sdmp-12.5.2-150300.58.1 * open-vm-tools-containerinfo-12.5.2-150300.58.1 * openSUSE Leap 15.3 (x86_64) * open-vm-tools-salt-minion-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro 5.3 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 *libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro 5.4 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * open-vm-tools-debuginfo-12.5.2-150300.58.1 * open-vm-tools-12.5.2-150300.58.1 * libvmtools0-debuginfo-12.5.2-150300.58.1 * libvmtools0-12.5.2-150300.58.1 * open-vm-tools-debugsource-12.5.2-150300.58.1 ## References: * https://www.suse.com/security/cve/CVE-2025-22247.html * https://bugzilla.suse.com/show_bug.cgi?id=1237147 * https://bugzilla.suse.com/show_bug.cgi?id=1237180 * https://bugzilla.suse.com/show_bug.cgi?id=1241938 * https://bugzilla.suse.com/show_bug.cgi?id=1243106 . This patch resolves problems in open-vm-tools, incorporating security enhancements to address a vulnerability related to improper file management.. open-vm-tools update, SUSE Linux security, moderate severity fixes. . LinuxSecurity.com Team

Calendar 2 May 22, 2025 SuSE
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

openSUSE Leap 15.6: 2025:1565-1 moderate: open-vm-tools insecure handling

* bsc#1237147 * bsc#1241938 * bsc#1243106 Cross-References: . # Security update for open-vm-tools Announcement ID: SUSE-SU-2025:1565-1 Release Date: 2025-05-16T11:05:16Z Rating: moderate References: * bsc#1237147 * bsc#1241938 * bsc#1243106 Cross-References: * CVE-2025-22247 CVSS scores: * CVE-2025-22247 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-22247 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N * CVE-2025-22247 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N Affected Products: * Basesystem Module 15-SP6 * Containers Module 15-SP6 * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for open-vm-tools fixes the following issues: Update to 12.5.2: Security fixes: * CVE-2025-22247: Fixed Insecure file handling (bsc#1243106) Other fixes: * Fixed GCC 15 compile time error (bsc#1241938) * Fix building with containerd 1.7.25+ (bsc#1237147) Full changelog: https://github.com/vmware/open-vm-tools/blob/stable-12.5.2/ReleaseNotes.md https://github.com/vmware/open-vm-tools/blob/stable-12.5.2/open-vm-tools/ChangeLog ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-1565=1 openSUSE-SLE-15.6-2025-1565=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-1565=1 * Containers Module 15-SP6 zypper in -t patchSUSE-SLE-Module-Containers-15-SP6-2025-1565=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2025-1565=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64 i586) * libvmtools0-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-containerinfo-12.5.2-150600.3.12.1 * open-vm-tools-desktop-12.5.2-150600.3.12.1 * open-vm-tools-12.5.2-150600.3.12.1 * open-vm-tools-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-desktop-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-sdmp-12.5.2-150600.3.12.1 * open-vm-tools-sdmp-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-containerinfo-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-debugsource-12.5.2-150600.3.12.1 * libvmtools-devel-12.5.2-150600.3.12.1 * libvmtools0-12.5.2-150600.3.12.1 * openSUSE Leap 15.6 (x86_64) * open-vm-tools-salt-minion-12.5.2-150600.3.12.1 * Basesystem Module 15-SP6 (aarch64 x86_64) * libvmtools0-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-12.5.2-150600.3.12.1 * open-vm-tools-sdmp-12.5.2-150600.3.12.1 * open-vm-tools-sdmp-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-debugsource-12.5.2-150600.3.12.1 * libvmtools0-12.5.2-150600.3.12.1 * Basesystem Module 15-SP6 (x86_64) * open-vm-tools-salt-minion-12.5.2-150600.3.12.1 * libvmtools-devel-12.5.2-150600.3.12.1 * Containers Module 15-SP6 (aarch64 x86_64) * open-vm-tools-containerinfo-12.5.2-150600.3.12.1 * open-vm-tools-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-debugsource-12.5.2-150600.3.12.1 * open-vm-tools-containerinfo-debuginfo-12.5.2-150600.3.12.1 * Desktop Applications Module 15-SP6 (aarch64 x86_64) * open-vm-tools-desktop-12.5.2-150600.3.12.1 * open-vm-tools-debugsource-12.5.2-150600.3.12.1 * open-vm-tools-debuginfo-12.5.2-150600.3.12.1 * open-vm-tools-desktop-debuginfo-12.5.2-150600.3.12.1 ## References: *https://www.suse.com/security/cve/CVE-2025-22247.html * https://bugzilla.suse.com/show_bug.cgi?id=1237147 * https://bugzilla.suse.com/show_bug.cgi?id=1241938 * https://bugzilla.suse.com/show_bug.cgi?id=1243106 . This vulnerability notice outlines revisions for vmware-tools that mitigate a flaw in management, lowering potential threats.. open-vm-tools security advisory, SUSE Linux updates, open-source patching. . LinuxSecurity.com Team

Calendar 2 May 16, 2025 SuSE
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianinsecure handling

Debian 11: DLA-4165-1 moderate: open-vm-tools file handling

open-vm-tools is a package that provides Open VMware Tools for virtual machines hosted on VMware. CVE-2025-22247 . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4165-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Jochen Sprickerhof May 14, 2025 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : open-vm-tools Version : 2:11.2.5-2+deb11u4 CVE ID : CVE-2025-22247 Debian Bug : 1105159 open-vm-tools is a package that provides Open VMware Tools for virtual machines hosted on VMware. CVE-2025-22247 Fixing an insecure file handling vulnerability. It allowed a malicious actor with non-administrative privileges on a guest VM to tamper the local files to trigger insecure file operations within that VM. VMSA-2025-0007 For Debian 11 bullseye, this problem has been fixed in version 2:11.2.5-2+deb11u4. We recommend that you upgrade your open-vm-tools packages. For the detailed security status of open-vm-tools please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/open-vm-tools Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Important security patch released for open-vm-tools to fix vulnerabilities in file management. Immediate upgrade advised for Ubuntu installations.. Open VMware Tools, Debian LTS, security update, file handling issue, moderate risk. . LinuxSecurity.com Team

Calendar 2 May 14, 2025 Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycritical issueFedora

Fedora 40: 2024-a23b5f0783 Critical: Mbedtls Insecure Handling Issue

Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-a23b5f0783 2024-04-19 21:20:20.797379 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 40 Version : 2.28.8 Release : 1.fc40 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 1 2024 Morten Stevens - 2.28.8-1 - Update to 2.28.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272172 - CVE-2024-28960 mbedtls: Insecure handling of shared memory in PSA Crypto APIs https://bugzilla.redhat.com/show_bug.cgi?id=2272172 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-a23b5f0783' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . The recent Mbedtls 2.28.8 update announcement for Fedora 40 tackles vulnerabilities, reinforcing encryption functionalities for improved security.. Mbedtls Update, Fedora Security, Lightweight Cryptography, SSL/TLS Library, Threat Mitigation. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 19, 2024 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorainsecure handling

Fedora 27: 2018-8f5a50e4d7 Critical: Slurm Insecure Handling

Security fix for CVE-2018-10995. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-8f5a50e4d7 2018-06-10 17:51:10.261179 --------------------------------------------------------------------------------Name : slurm Product : Fedora 27 Version : 17.02.11 Release : 1.fc27 URL : https://slurm.schedmd.com/ Summary : Simple Linux Utility for Resource Management Description : Slurm is an open source, fault-tolerant, and highly scalable cluster management and job scheduling system for large and small Linux clusters. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2018-10995 --------------------------------------------------------------------------------References: [ 1 ] Bug #1584939 - CVE-2018-10995 slurm: Insecure handling of username and gid fields https://bugzilla.redhat.com/show_bug.cgi?id=1584939 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-8f5a50e4d7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./message/D6RUWE7M7XTT57EW4TKLIKMUEVGM7RSP/ . An essential patch for slurm addressing CVE-2018-10995 in Fedora elevates both system security and reliability metrics.. Fedora Security Update, Slurm Management, Insecure Handling Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 10, 2018 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian: DSA-105-1 Critical: Enscriptt Insecure Temp File Handling

The version of enscript (a tool to convert ASCII text to differentformats) has been found to create temporary files insecurely.. ------------------------------------------------------------------------ Debian Security Advisory DSA-105-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman January 21, 2002 ------------------------------------------------------------------------ Package : enscript Problem type : insecure temporary files Debian-specific: no The version of enscript (a tool to convert ASCII text to different formats) has been found to create temporary files insecurely. This has been fixed in version 1.6.2-4.1 . wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.2 alias potato --------------------------------- Potato was released for alpha, arm, i386, m68k, powerpc and sparc. Source archives: MD5 checksum: 9804afe6e88ce01c401e7ba69c16f499 MD5 checksum: 45d3c704006ac4f5782af606c85950f8 MD5 checksum: 823e5eec421350c91bd5e65ebdc9fa7f Alpha architecture: MD5 checksum: de76734dc050b25b7e910373c8952b4e ARM architecture: MD5 checksum: 30a6f887dcfe58b03683dfceb36891ae Intel IA-32 architecture: MD5 checksum: 6eb940c410f2363a35fc0ba29bd03e6b Motorola 680x0 architecture: MD5 checksum: 411d2c7f1dda66b5ae1e560b664063e0 PowerPC architecture: MD5 checksum: ea2a8299d261a0bdc33c7b26d2a5adde Sun Sparc architecture: MD5 checksum: e53fc25a3f3788f2063c8b5490aaeb24 These packages will be moved into the stable distribution on its next revision. -- ---------------------------------------------------------------------------- apt-get: deb Debian -- Security Information stable/updates main dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security AdvisoryDSA-105-1 Debian Security Information Wichert Akkerman January 21, 2002 Pac. version, enscript, convert, ascii, differentformats), found, create. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 20, 2002 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here